Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2017-10791

Published: 02/07/2017 Updated: 02/09/2017
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Subscribe to Pspp

Vulnerability Summary

There is an Integer overflow in the hash_int function of the libpspp library in GNU PSPP prior to 0.11.0. For example, a crash was observed within the library code when attempting to convert invalid SPSS data into CSV format. A crafted input will lead to a remote denial of service attack.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

gnu pspp 0.10.5-pre2

Vendor Advisories

Debian CVElist Bug Report Logs: CVE-2017-10791 CVE-2017-10792
Debian Bug report logs - #866890 CVE-2017-10791 CVE-2017-10792 Package: pspp; Maintainer for pspp is Debian Science Team <debian-science-maintainers@listsaliothdebianorg>; Source for pspp is src:pspp (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Sun, 2 Jul 2017 14:57:01 UTC Severit ...

References

CWE-190https://bugzilla.redhat.com/show_bug.cgi?id=1467004http://lists.gnu.org/archive/html/pspp-announce/2017-08/msg00000.htmlhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866890https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693CVE-2024-30851CVE-2024-34460CVE-2024-2887localCVE-2024-27956remote code executionCVE-2024-34475privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook